wrong ownership php5-fpm sockets

Question

wrong ownership php5-fpm sockets

development

forum:richardreed 9 years, 11 months ago

my php-fpm was upgrade via apt-get and it is causing all my sites to return back as 502 errors.. Upon looking at the nginx log, it was generating these:

2014/05/10 21:50:02 [crit] 1329#0: *39 connect() to unix:/var/run/fpm.boost.sock failed (13: Permission denied) while connecting to upstream, client: 162.243.252.230, server: http://www.boostmyfitness.com, request: "GET /wp-cron.php HTTP/1.1", upstream: "fastcgi://unix:/var/run/fpm.boost.sock:", host: "www.boostmyfitness.com"

I looked at /var/run folder and saw all the fpm sockets were root:root.. it should be owned by username:www-data (based on pool.d conf file).. I am not sure where to fix that permission issue.. I can issue chown and get the site back up running until php-fpm is restarted.

Im running Ubuntu 14.04 with:

PHP 5.5.12-1+deb.sury.org~trusty+1 (cli) (built: May 8 2014 21:09:59)

nginx version: nginx/1.7.0

Thanks,

Richard

2 Replies

forum:Nibbler · Answer 1 · May 11, 2014, 7:39 a.m.

forum:Nibbler 9 years, 11 months ago

This was a security fix in PHP 5.5.12. Default perms on the socket changed from 0666 to 0660. The settings you need to specify are listen.owner and listen.group in php-fpm config for each pool.

forum:robertcope · Answer 2 · May 11, 2014, 3:29 p.m.

forum:robertcope 9 years, 11 months ago

I run my php-fpm process as a different user than my nginx process. To bridge the two users, I create a new group and added both users as members. Then I updated listen.group to the new group. You will have to restart nginx and php-fpm after doing this.

robert

Compute

Storage

Databases

Networking

Developer Tools

Delivery

Security

Services

Industries

Pricing

Community

Engage With Us

wrong ownership php5-fpm sockets

2 Replies

Reply

Tips: